projects / GitHub / moto-9609 / android_kernel_motorola_exynos9610.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 1bd7fac) | patch
ima: added support for new kernel cmdline parameter ima_template_fmt
authorRoberto Sassu <roberto.sassu@polito.it>
Mon, 13 Oct 2014 12:08:42 +0000 (14:08 +0200)
committerMimi Zohar <zohar@linux.vnet.ibm.com>
Mon, 13 Oct 2014 12:39:02 +0000 (08:39 -0400)
commitc2426d2ad5027397342107b7ff094aa9b234acb8
treea94bfc6a99f121a68890388bebbdf8dcc7299ad7tree | snapshot (tar.gz zip)
parent1bd7face74391ddfc568b3e638f156da1ed77aa6commit | diff
ima: added support for new kernel cmdline parameter ima_template_fmt

This patch allows users to provide a custom template format through the
new kernel command line parameter 'ima_template_fmt'. If the supplied
format is not valid, IMA uses the default template descriptor.

Changelog:
 - v3:
   - added check for 'fields' and 'num_fields' in
     template_desc_init_fields() (suggested by Mimi Zohar)

 - v2:
   - using template_desc_init_fields() to validate a format string
     (Roberto Sassu)
   - updated documentation by stating that only the chosen template
     descriptor is initialized (Roberto Sassu)

 - v1:
   - simplified code of ima_template_fmt_setup()
     (Roberto Sassu, suggested by Mimi Zohar)

Signed-off-by: Roberto Sassu <roberto.sassu@polito.it>
Signed-off-by: Mimi Zohar <zohar@linux.vnet.ibm.com>
Documentation/kernel-parameters.txt diff | blob | blame | history
Documentation/security/IMA-templates.txt diff | blob | blame | history
security/integrity/ima/ima_template.c diff | blob | blame | history